Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Users\user\Desktop\server.exe
|
C:\Users\user\Desktop\server.exe
|
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
http://62.173.142.51/drew/uzFqBPgZCIqO6jg1c5K/Xjd9gdsAubWMmY_2FDAd8e/U4Ap1PqTIR2WQ/a0CAd0nU/ThrgRPS1U5uEI3kIT3QYk4V/9d6bFT0hxT/5DxxrYQlR4IV_2Fei/ZJj6rXzL8HY8/xQEVwjD3Ur1/F3MhUjI5IvSaS_/2BdrMle6CgPaU6_2BOFFJ/FAcptoJYalDMhiD8/zK9g2iPFhAmXVAs/NjAIlnCY_2B_2FS4qz/z8NkwINX2/bN1cceH77_2BrxV4WYdI/F0hZV08Kh1Pm3jwzz9R/ILM_2FNGfAIX1b0GrBrRbH/64NI6.jlk
|
62.173.142.51
|
||
http://62.173
|
unknown
|
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
checklist.skype.com
|
unknown
|
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
62.173.142.51
|
unknown
|
Russian Federation
|
Memdumps
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
---|---|---|---|---|
2CD8000
|
heap
|
page read and write
|
||
2CD8000
|
heap
|
page read and write
|
||
2CD8000
|
heap
|
page read and write
|
||
2CD8000
|
heap
|
page read and write
|
||
2CD8000
|
heap
|
page read and write
|
||
2CD8000
|
heap
|
page read and write
|
||
2CD8000
|
heap
|
page read and write
|
||
2CD8000
|
heap
|
page read and write
|
||
2CD8000
|
heap
|
page read and write
|
||
2858000
|
heap
|
page read and write
|
||
230E000
|
stack
|
page read and write
|
||
2CDB000
|
heap
|
page read and write
|
||
58A000
|
heap
|
page read and write
|
||
2858000
|
heap
|
page read and write
|
||
550000
|
direct allocation
|
page execute and read and write
|
||
405000
|
unkown
|
page execute and read and write
|
||
2070000
|
heap
|
page read and write
|
||
40F000
|
unkown
|
page write copy
|
||
2858000
|
heap
|
page read and write
|
||
9D000
|
stack
|
page read and write
|
||
401000
|
unkown
|
page execute read
|
||
49E000
|
unkown
|
page readonly
|
||
2858000
|
heap
|
page read and write
|
||
30000
|
heap
|
page read and write
|
||
1F0000
|
heap
|
page read and write
|
||
2858000
|
heap
|
page read and write
|
||
342A000
|
stack
|
page read and write
|
||
400000
|
unkown
|
page readonly
|
||
23EE000
|
stack
|
page read and write
|
||
400000
|
unkown
|
page execute and read and write
|
||
2858000
|
heap
|
page read and write
|
||
407000
|
unkown
|
page execute and read and write
|
||
2858000
|
heap
|
page read and write
|
||
580000
|
heap
|
page read and write
|
||
49E000
|
unkown
|
page readonly
|
||
420000
|
unkown
|
page read and write
|
||
372C000
|
stack
|
page read and write
|
||
5EC000
|
heap
|
page read and write
|
||
332F000
|
stack
|
page read and write
|
||
20BE000
|
stack
|
page read and write
|
||
2360000
|
heap
|
page read and write
|
||
57A000
|
unclassified section
|
page read and write
|
||
579000
|
unclassified section
|
page readonly
|
||
2CDB000
|
heap
|
page read and write
|
||
403000
|
unkown
|
page execute and read and write
|
||
570000
|
unclassified section
|
page read and write
|
||
571000
|
unclassified section
|
page execute read
|
||
322F000
|
stack
|
page read and write
|
||
2858000
|
heap
|
page read and write
|
||
22CC000
|
stack
|
page read and write
|
||
2858000
|
heap
|
page read and write
|
||
5AB000
|
heap
|
page read and write
|
||
352E000
|
stack
|
page read and write
|
||
19C000
|
stack
|
page read and write
|
||
5F8000
|
heap
|
page read and write
|
||
312F000
|
stack
|
page read and write
|
||
560000
|
direct allocation
|
page read and write
|
||
28E0000
|
heap
|
page read and write
|
||
5F1000
|
heap
|
page read and write
|
||
27D9000
|
heap
|
page read and write
|
||
28AE000
|
stack
|
page read and write
|
||
23AD000
|
stack
|
page read and write
|
||
2460000
|
heap
|
page read and write
|
||
20C0000
|
heap
|
page read and write
|
||
362F000
|
stack
|
page read and write
|
||
234E000
|
stack
|
page read and write
|
||
2410000
|
heap
|
page read and write
|
||
598000
|
heap
|
page execute and read and write
|
||
202C000
|
stack
|
page read and write
|
||
245E000
|
stack
|
page read and write
|
||
540000
|
heap
|
page read and write
|
||
57C000
|
unclassified section
|
page readonly
|
||
40D000
|
unkown
|
page write copy
|
There are 63 hidden memdumps, click here to show them.